Sorry to reply to my own post, but I think I partially answered my question by
looking at http://www.openswan.org/docs/feature_comparison.php. The only
things that I need that aren't answered by this comparison are:
1.does OpenSwan support hardware crypto acceleration? I know there is a patch for that in FreeS/WAN, and 2.does OpenSwan support external methods, i.e. smartcards. There is a patch to support this in FreeS/WAN as well.
You may want to look at StrongSwan. This is the source of the X.509 stuff. I believe StrongSwan supports crypto hardware. Of course with the FreeS/WAN project stopped we will have to put in some effort ourselves. I believe in the StrongSwan approach, mainly because Andreas Steffen lives only a few kilometers away and has been an invaluable source of information. But as I said, for the moment I opt for OpenSwan.
cheers Erich
THINK P�ntenstrasse 39 8143 Stallikon mailto:[EMAIL PROTECTED] PGP Fingerprint: BC9A 25BC 3954 3BC8 C024 8D8A B7D4 FF9D 05B8 0A16
------------------------------------------------------- This SF.Net email is sponsored by: Oracle 10g Get certified on the hottest thing ever to hit the market... Oracle 10g. Take an Oracle 10g class now, and we'll give you the exam FREE. http://ads.osdn.com/?ad_id149&alloc_id�66&op=click ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
